But now Trusted auth has been deprecated in favour of 2-legged oauth, so have the methods createReciprocalLink and configureAuthenticationForApplicationLink. Without any indication of what to replace them with.

But that only sets up outbound auth on each app, it doesn't permit inbound 2-legged impersonating oauth on the apps.

I can't find any public API to enable this - the APIs used by the AppLinks plugin UI resources appear to use internal private APIs (com.atlassian.applinks.internal.status.oauth.OAuthStatusService#updateOAuthStatus).

Can anyone, or Atlassian even, shed light on how to accomplish this programmatically?